General
-
Target
af98aa032f2897ae5992e50cb6ee549275c15b7f6a09c57c2bf3bf20c433fb43
-
Size
602KB
-
Sample
221112-ypk74ahc84
-
MD5
17d9ac538df716ab08298a03881eee3b
-
SHA1
bc6617217c559dc544da90fc5e5c9cc915e30f93
-
SHA256
af98aa032f2897ae5992e50cb6ee549275c15b7f6a09c57c2bf3bf20c433fb43
-
SHA512
a2aab1780528975bffb5d4d4a864f1c74eb1593e485a3d380bbc2ebbf7d2bac744fcaf20404a571acc45f8cabba25c1fd28ee5db464aab142898311ad3284df8
-
SSDEEP
12288:/9nKlq/XU3s0q6o2ifjuDoYM6EqGxqj2nvW5/9t5qpx:1KlqM3sZdfjuLEqGkP/wpx
Static task
static1
Behavioral task
behavioral1
Sample
af98aa032f2897ae5992e50cb6ee549275c15b7f6a09c57c2bf3bf20c433fb43.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
af98aa032f2897ae5992e50cb6ee549275c15b7f6a09c57c2bf3bf20c433fb43.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
C:\$Recycle.Bin\S-1-5-21-999675638-2867687379-27515722-1000\RESTORE_FILES.txt
azov
Targets
-
-
Target
af98aa032f2897ae5992e50cb6ee549275c15b7f6a09c57c2bf3bf20c433fb43
-
Size
602KB
-
MD5
17d9ac538df716ab08298a03881eee3b
-
SHA1
bc6617217c559dc544da90fc5e5c9cc915e30f93
-
SHA256
af98aa032f2897ae5992e50cb6ee549275c15b7f6a09c57c2bf3bf20c433fb43
-
SHA512
a2aab1780528975bffb5d4d4a864f1c74eb1593e485a3d380bbc2ebbf7d2bac744fcaf20404a571acc45f8cabba25c1fd28ee5db464aab142898311ad3284df8
-
SSDEEP
12288:/9nKlq/XU3s0q6o2ifjuDoYM6EqGxqj2nvW5/9t5qpx:1KlqM3sZdfjuLEqGkP/wpx
Score10/10-
Modifies Windows Firewall
-
Registers COM server for autorun
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-